Web Services Testing

How will you perform Security Testing of the Web Services?

Questions by KauShreya   answers by KauShreya

Showing Answers 1 - 4 of 4 Answers


A Web service is a software system designed to support interoperable machine-to-machine interaction over a network.

How to test:

I've tested a web service called 'Soap server' in my project and it is worked as below.

-> first of request will send to service in XML format
-> Server is also respond to client in terms of XML





<ERROR_MESSAGE><![CDATA[Authentication Failed. Unable to find the specified GUID in the SmartChange system. If the problem persists please contact the SmartChange administrator.]]></ERROR_MESSAGE>

Security testing: It can't tell in one word, it's a big process and vary sever to server.


  Was this answer useful?  Yes

It depends on application you test. In my case we download data from one central database to a local database using webservice.
In central database data is stored as per pariticular service area and it should be visible only to user of that particular service area and while connecting to central database through webservice we provide user name and password.
So we test that when we log in to particular service area we should not be able to see and download data from other service area...
This is what I do
1) Created data in both service area which can be downloaded
2) However login with 1 service area
2) Try to download data
3) Verify that only particular service areas data gets downloaded..
We do lot many things.. but it actaully depends on application.

  Was this answer useful?  Yes

Give your answer:

If you think the above answer is not correct, Please select a reason and add your answer below.


Related Answered Questions


Related Open Questions